← Back

CVE-2005-0754

nvd nist
Published: Apr 22, 2005Modified: Apr 16, 2026

JSON object

Loading...
7.5
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 10.0 / Impact: 6.4
Source: NVD

Description

Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote attackers to execute arbitrary code.

Affected (18)

Products: Conectiva: Linux · Kde: Quanta, Kde · Gentoo: Linux · +2 more
Show all products
Conectiva: Linux · Kde: Quanta, Kde · Gentoo: Linux · Redhat: Fedora Core · Ubuntu: Ubuntu Linux
Conectiva
1 product
Linux
Kde
2 products
Quanta
Kde
Gentoo
1 product
Linux
Redhat
1 product
Fedora Core
Ubuntu
1 product
Ubuntu Linux
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Conectiva
Linux
Version 10.0
Linux
Version 9.0
Quanta
Version 3.1
Configuration B
15 vulnerable
Vulnerable SoftwareAffected Versions
Linux
All versions
Kde
Kde
Version 3.2.1
Kde
Version 3.2.2
Kde
Version 3.2.3
Kde
Version 3.2
Kde
Version 3.3.1
Kde
Version 3.3.2
Kde
Version 3.3
Kde
Version 3.4
Fedora Core
Version core_3.0
Ubuntu
Ubuntu Linux
Version 4.1
Ubuntu Linux
Version 4.1
Ubuntu Linux
Version 5.04
Ubuntu Linux
Version 5.04
Ubuntu Linux
Version 5.04

References (10)

ftp://ftp.kde.org/pub/kde/security_patches/post-3.4.0-kdewebdev-kommander.diff (unsafe URL)
Source: secalert@redhat.com
Vendor Advisory
Source: secalert@redhat.com
Source: secalert@redhat.com
PatchVendor Advisory
Source: secalert@redhat.com
PatchVendor Advisory
Source: secalert@redhat.com
PatchVendor Advisory
ftp://ftp.kde.org/pub/kde/security_patches/post-3.4.0-kdewebdev-kommander.diff (unsafe URL)
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.